Vishing, the new identity theft fraud
| 08.11.2022
Vishing is a type of scam based on social engineering and impersonation. Here we explain what it is and how it works, and give you advice to protect yourself from this fraudulent practice.
Be careful with unexpected calls
Vishing is a telephone scam. Potential victims receive a call from a person identifying themselves as an employee of their bank. The ultimate goal of the call is to steal confidential information.
How does this scam work?
The call comes from an unknown, hidden number, but sometimes they can make the name of the bank appear on the screen.
During the call, the impostor may reference some of the potential victim’s personal details so that they do not suspect a scam. The impostor may also insist that this is an urgent call to solve a problem the client supposedly has.
Finally, once the client’s trust is gained, the impostor requests confidential data, such as account numbers, passwords, transaction verification codes, addresses, or phone numbers.
Tips to protect yourself
If you receive a suspicious call, stay calm and do not follow the potential cybercriminal’s instructions.
If someone you don’t know asks you for your personal data, end the call and contact the bank through an official channel or your usual manager to verify the authenticity of the suspicious call. Bear in mind that banking institutions already have their clients’ names, identifying information, and account or card numbers.
And remember, Mora Banc will never call you unexpectedly to ask for confidential information.
Information on the processing of personal data
In compliance with Law 15/2003 of 18 December on protection of personal data, the customer authorizes that the applicant’s personal data entered on this form will be incorporated into files owned and managed by MORA BANC GRUP, SA – MORA BANC, SAU (hereafter referred to as “MoraBanc”) to process the requested service and, if necessary, to comply with the contracts finally entered into, and also to ensure correct operational procedures.
The applicant expressly authorises MoraBanc to send him/her commercial and promotional communications for products and services and information on the Bank itself, social or other activities, in hardcopy by post or by electronic means (among others, short messages (SMS) to mobile phones, e-mail, etc.). This consent can always be withdrawn, without retroactive effect.
The fact of filling out this form implies that the applicant acknowledges that the information and personal data provided are true, accurate and correct; otherwise, MoraBanc declines all responsibility for the lack of truthfulness or correctness of the data.
The applicant authorises the data provided to be communicated or shared with third parties forming part of the MoraBanc business group, entities which are primarily active in the financial, insurance and service sectors. The applicant is considered as having been informed of this transfer of information by means of this clause. The applicant accepts that he/she may be sent information on any product or service marketed by these companies.
The data processing manager is MoraBanc. The applicant is hereby informed that the rights of access, rectification, suppression or opposition may be exercised in the terms established in current legislation.